Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Dropper.BCminer among others


  • This topic is locked This topic is locked
3 replies to this topic

#1 SOG

SOG

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:41 PM

Posted 26 July 2012 - 07:34 PM

Running an ASUS laptop with Windows 7 SP1. Tried a clean install of Win7, but dvd won't read, presumably due to infection. Already read several threads on this issue so I downloaded the most common apps. Logs included. Any help is greatly appreciated.


18:21:07.0871 0788 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
18:21:08.0885 0788 ============================================================
18:21:08.0885 0788 Current date / time: 2012/07/26 18:21:08.0885
18:21:08.0885 0788 SystemInfo:
18:21:08.0885 0788
18:21:08.0885 0788 OS Version: 6.1.7601 ServicePack: 1.0
18:21:08.0885 0788 Product type: Workstation
18:21:08.0885 0788 ComputerName: JENNIFERLOWERY
18:21:08.0885 0788 UserName: Anita
18:21:08.0885 0788 Windows directory: C:\Windows
18:21:08.0885 0788 System windows directory: C:\Windows
18:21:08.0885 0788 Running under WOW64
18:21:08.0885 0788 Processor architecture: Intel x64
18:21:08.0885 0788 Number of processors: 2
18:21:08.0885 0788 Page size: 0x1000
18:21:08.0885 0788 Boot type: Safe boot with network
18:21:08.0885 0788 ============================================================
18:21:09.0650 0788 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:21:09.0650 0788 Drive \Device\Harddisk1\DR2 - Size: 0xEE979000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:21:09.0665 0788 ============================================================
18:21:09.0665 0788 \Device\Harddisk0\DR0:
18:21:09.0665 0788 MBR partitions:
18:21:09.0665 0788 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1D4B178, BlocksNum 0x950A600
18:21:09.0681 0788 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xB2557B7, BlocksNum 0x1A1D42F9
18:21:09.0681 0788 \Device\Harddisk1\DR2:
18:21:09.0681 0788 MBR partitions:
18:21:09.0681 0788 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x774B01
18:21:09.0681 0788 ============================================================
18:21:09.0728 0788 C: <-> \Device\Harddisk0\DR0\Partition0
18:21:09.0743 0788 D: <-> \Device\Harddisk0\DR0\Partition1
18:21:09.0743 0788 ============================================================
18:21:09.0743 0788 Initialize success
18:21:09.0743 0788 ============================================================
18:21:18.0495 1308 ============================================================
18:21:18.0495 1308 Scan started
18:21:18.0495 1308 Mode: Manual; SigCheck; TDLFS;
18:21:18.0495 1308 ============================================================
18:21:18.0978 1308 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:21:19.0493 1308 1394ohci - ok
18:21:19.0556 1308 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:21:19.0571 1308 ACPI - ok
18:21:19.0618 1308 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:21:19.0696 1308 AcpiPmi - ok
18:21:19.0774 1308 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:21:19.0790 1308 adp94xx - ok
18:21:19.0836 1308 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:21:19.0852 1308 adpahci - ok
18:21:19.0868 1308 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:21:19.0883 1308 adpu320 - ok
18:21:19.0961 1308 ADSMService (c0bf554d2277f7a4c735d475ade2e3b2) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
18:21:20.0008 1308 ADSMService ( UnsignedFile.Multi.Generic ) - warning
18:21:20.0008 1308 ADSMService - detected UnsignedFile.Multi.Generic (1)
18:21:20.0039 1308 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:21:20.0211 1308 AeLookupSvc - ok
18:21:20.0289 1308 AFBAgent (fb2be0bae9b3f248080cdbf91ef16c7f) C:\Windows\system32\FBAgent.exe
18:21:20.0601 1308 AFBAgent - ok
18:21:20.0632 1308 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:21:20.0710 1308 AFD - ok
18:21:20.0741 1308 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:21:20.0757 1308 agp440 - ok
18:21:20.0788 1308 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:21:20.0850 1308 ALG - ok
18:21:20.0882 1308 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:21:20.0913 1308 aliide - ok
18:21:20.0944 1308 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:21:20.0960 1308 amdide - ok
18:21:21.0006 1308 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:21:21.0053 1308 AmdK8 - ok
18:21:21.0084 1308 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:21:21.0116 1308 AmdPPM - ok
18:21:21.0162 1308 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:21:21.0178 1308 amdsata - ok
18:21:21.0209 1308 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:21:21.0225 1308 amdsbs - ok
18:21:21.0240 1308 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:21:21.0256 1308 amdxata - ok
18:21:21.0318 1308 AmUStor (391887990cdaa83de5c56c3fde966da1) C:\Windows\system32\drivers\AmUStor.SYS
18:21:21.0365 1308 AmUStor - ok
18:21:21.0459 1308 AppHostSvc (59d01fa91962c9c1e9b4022b2d3b46db) C:\Windows\system32\inetsrv\apphostsvc.dll
18:21:21.0521 1308 AppHostSvc - ok
18:21:21.0568 1308 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:21:21.0708 1308 AppID - ok
18:21:21.0740 1308 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:21:21.0786 1308 AppIDSvc - ok
18:21:21.0849 1308 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:21:21.0911 1308 Appinfo - ok
18:21:21.0974 1308 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:21:21.0989 1308 arc - ok
18:21:22.0005 1308 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:21:22.0020 1308 arcsas - ok
18:21:22.0067 1308 AsDsm (88fbc8bebfd38566235eaa5e4dbc4e05) C:\Windows\system32\drivers\AsDsm.sys
18:21:22.0067 1308 AsDsm - ok
18:21:22.0161 1308 ASLDRService (18e5c2f937f9deb8c282df66a3761925) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
18:21:22.0161 1308 ASLDRService - ok
18:21:22.0239 1308 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:21:22.0301 1308 AsyncMac - ok
18:21:22.0332 1308 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:21:22.0348 1308 atapi - ok
18:21:22.0520 1308 athr (a5e770426d18f8ef332a593f3289da91) C:\Windows\system32\DRIVERS\athrx.sys
18:21:22.0598 1308 athr - ok
18:21:22.0707 1308 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:21:22.0769 1308 AudioEndpointBuilder - ok
18:21:22.0769 1308 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:21:22.0816 1308 AudioSrv - ok
18:21:23.0081 1308 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
18:21:23.0284 1308 AVGIDSAgent - ok
18:21:23.0409 1308 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
18:21:23.0409 1308 AVGIDSDriver - ok
18:21:23.0424 1308 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
18:21:23.0440 1308 AVGIDSFilter - ok
18:21:23.0456 1308 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
18:21:23.0471 1308 AVGIDSHA - ok
18:21:23.0487 1308 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
18:21:23.0502 1308 Avgldx64 - ok
18:21:23.0518 1308 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
18:21:23.0534 1308 Avgmfx64 - ok
18:21:23.0565 1308 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
18:21:23.0565 1308 Avgrkx64 - ok
18:21:23.0596 1308 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
18:21:23.0612 1308 Avgtdia - ok
18:21:23.0643 1308 avgtp (e1b8ec60c85a266cb604cd46921606b4) C:\Windows\system32\drivers\avgtpx64.sys
18:21:23.0643 1308 avgtp - ok
18:21:23.0736 1308 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
18:21:23.0830 1308 avgwd - ok
18:21:23.0877 1308 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:21:23.0908 1308 AxInstSV - ok
18:21:23.0970 1308 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:21:24.0017 1308 b06bdrv - ok
18:21:24.0064 1308 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:21:24.0111 1308 b57nd60a - ok
18:21:24.0142 1308 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:21:24.0173 1308 BDESVC - ok
18:21:24.0189 1308 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:21:24.0251 1308 Beep - ok
18:21:24.0360 1308 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:21:24.0423 1308 BFE - ok
18:21:24.0485 1308 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:21:24.0516 1308 blbdrive - ok
18:21:24.0563 1308 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:21:24.0610 1308 bowser - ok
18:21:24.0657 1308 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:21:24.0704 1308 BrFiltLo - ok
18:21:24.0735 1308 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:21:24.0766 1308 BrFiltUp - ok
18:21:24.0813 1308 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
18:21:24.0875 1308 BridgeMP - ok
18:21:24.0906 1308 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:21:24.0969 1308 Browser - ok
18:21:25.0000 1308 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:21:25.0047 1308 Brserid - ok
18:21:25.0062 1308 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:21:25.0094 1308 BrSerWdm - ok
18:21:25.0125 1308 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:21:25.0172 1308 BrUsbMdm - ok
18:21:25.0187 1308 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:21:25.0218 1308 BrUsbSer - ok
18:21:25.0234 1308 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:21:25.0265 1308 BTHMODEM - ok
18:21:25.0296 1308 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:21:25.0374 1308 bthserv - ok
18:21:25.0390 1308 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:21:25.0437 1308 cdfs - ok
18:21:25.0484 1308 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:21:25.0515 1308 cdrom - ok
18:21:25.0562 1308 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:21:25.0624 1308 CertPropSvc - ok
18:21:25.0671 1308 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:21:25.0686 1308 circlass - ok
18:21:25.0733 1308 CISVC (ff60401f1c659ca2ed4bae85d3fd14da) C:\Windows\system32\CISVC.EXE
18:21:25.0749 1308 CISVC - ok
18:21:25.0796 1308 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:21:25.0811 1308 CLFS - ok
18:21:25.0920 1308 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:21:25.0967 1308 clr_optimization_v2.0.50727_32 - ok
18:21:26.0030 1308 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:21:26.0076 1308 clr_optimization_v2.0.50727_64 - ok
18:21:26.0170 1308 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:21:26.0295 1308 clr_optimization_v4.0.30319_32 - ok
18:21:26.0373 1308 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:21:26.0466 1308 clr_optimization_v4.0.30319_64 - ok
18:21:26.0498 1308 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:21:26.0529 1308 CmBatt - ok
18:21:26.0544 1308 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:21:26.0560 1308 cmdide - ok
18:21:26.0591 1308 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:21:26.0638 1308 CNG - ok
18:21:26.0669 1308 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:21:26.0685 1308 Compbatt - ok
18:21:26.0716 1308 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:21:26.0763 1308 CompositeBus - ok
18:21:26.0778 1308 COMSysApp - ok
18:21:26.0810 1308 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:21:26.0825 1308 crcdisk - ok
18:21:26.0841 1308 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:21:26.0888 1308 CryptSvc - ok
18:21:26.0919 1308 dc3d (7af9dac504fbd047cbc3e64ae52c92bf) C:\Windows\system32\DRIVERS\dc3d.sys
18:21:26.0966 1308 dc3d - ok
18:21:27.0028 1308 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:21:27.0418 1308 DcomLaunch - ok
18:21:27.0449 1308 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:21:27.0496 1308 defragsvc - ok
18:21:27.0527 1308 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:21:27.0590 1308 DfsC - ok
18:21:27.0652 1308 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:21:27.0714 1308 Dhcp - ok
18:21:27.0746 1308 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:21:27.0792 1308 discache - ok
18:21:27.0839 1308 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:21:27.0855 1308 Disk - ok
18:21:27.0917 1308 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:21:27.0933 1308 Dnscache - ok
18:21:27.0980 1308 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:21:28.0042 1308 dot3svc - ok
18:21:28.0089 1308 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
18:21:28.0120 1308 Dot4 - ok
18:21:28.0151 1308 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys
18:21:28.0182 1308 Dot4Print - ok
18:21:28.0198 1308 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
18:21:28.0229 1308 dot4usb - ok
18:21:28.0260 1308 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:21:28.0307 1308 DPS - ok
18:21:28.0338 1308 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:21:28.0370 1308 drmkaud - ok
18:21:28.0432 1308 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:21:28.0463 1308 DXGKrnl - ok
18:21:28.0526 1308 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:21:28.0588 1308 EapHost - ok
18:21:28.0728 1308 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:21:28.0806 1308 ebdrv - ok
18:21:28.0900 1308 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:21:28.0931 1308 EFS - ok
18:21:29.0009 1308 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:21:29.0040 1308 ehRecvr - ok
18:21:29.0072 1308 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:21:29.0118 1308 ehSched - ok
18:21:29.0181 1308 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:21:29.0212 1308 elxstor - ok
18:21:29.0228 1308 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:21:29.0259 1308 ErrDev - ok
18:21:29.0290 1308 ETD (5cd1005b9bc241c3ab8501d5fbf09fd4) C:\Windows\system32\DRIVERS\ETD.sys
18:21:29.0337 1308 ETD - ok
18:21:29.0399 1308 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:21:29.0462 1308 EventSystem - ok
18:21:29.0493 1308 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:21:29.0540 1308 exfat - ok
18:21:29.0571 1308 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:21:29.0618 1308 fastfat - ok
18:21:29.0696 1308 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:21:29.0742 1308 Fax - ok
18:21:29.0789 1308 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:21:29.0820 1308 fdc - ok
18:21:29.0852 1308 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:21:29.0930 1308 fdPHost - ok
18:21:29.0945 1308 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:21:29.0992 1308 FDResPub - ok
18:21:30.0023 1308 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:21:30.0039 1308 FileInfo - ok
18:21:30.0039 1308 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:21:30.0101 1308 Filetrace - ok
18:21:30.0132 1308 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:21:30.0164 1308 flpydisk - ok
18:21:30.0195 1308 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:21:30.0210 1308 FltMgr - ok
18:21:30.0273 1308 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:21:30.0304 1308 FontCache - ok
18:21:30.0444 1308 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:21:30.0444 1308 FontCache3.0.0.0 - ok
18:21:30.0491 1308 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:21:30.0507 1308 FsDepends - ok
18:21:30.0538 1308 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:21:30.0554 1308 Fs_Rec - ok
18:21:30.0585 1308 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:21:30.0600 1308 fvevol - ok
18:21:30.0616 1308 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:21:30.0632 1308 gagp30kx - ok
18:21:30.0678 1308 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:21:30.0741 1308 gpsvc - ok
18:21:30.0756 1308 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:21:30.0788 1308 hcw85cir - ok
18:21:30.0850 1308 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:21:30.0897 1308 HdAudAddService - ok
18:21:30.0928 1308 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:21:30.0959 1308 HDAudBus - ok
18:21:30.0990 1308 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:21:31.0022 1308 HidBatt - ok
18:21:31.0037 1308 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:21:31.0068 1308 HidBth - ok
18:21:31.0084 1308 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:21:31.0115 1308 HidIr - ok
18:21:31.0162 1308 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
18:21:31.0209 1308 hidserv - ok
18:21:31.0271 1308 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:21:31.0271 1308 HidUsb - ok
18:21:31.0302 1308 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:21:31.0349 1308 hkmsvc - ok
18:21:31.0380 1308 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:21:31.0427 1308 HomeGroupListener - ok
18:21:31.0474 1308 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:21:31.0490 1308 HomeGroupProvider - ok
18:21:31.0521 1308 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:21:31.0536 1308 HpSAMD - ok
18:21:31.0599 1308 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:21:31.0661 1308 HTTP - ok
18:21:31.0677 1308 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:21:31.0692 1308 hwpolicy - ok
18:21:31.0739 1308 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:21:31.0739 1308 i8042prt - ok
18:21:31.0786 1308 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
18:21:31.0802 1308 iaStor - ok
18:21:31.0833 1308 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:21:31.0848 1308 iaStorV - ok
18:21:32.0004 1308 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:21:32.0036 1308 idsvc - ok
18:21:32.0410 1308 igfx (c6238c6abd6ac99f5d152da4e9439a3d) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:21:32.0738 1308 igfx - ok
18:21:32.0831 1308 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:21:32.0847 1308 iirsp - ok
18:21:32.0909 1308 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:21:32.0972 1308 IKEEXT - ok
18:21:33.0034 1308 IntcHdmiAddService (d485d3bd3e2179aa86853a182f70699f) C:\Windows\system32\drivers\IntcHdmi.sys
18:21:33.0081 1308 IntcHdmiAddService - ok
18:21:33.0096 1308 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:21:33.0112 1308 intelide - ok
18:21:33.0143 1308 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:21:33.0174 1308 intelppm - ok
18:21:33.0221 1308 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:21:33.0268 1308 IPBusEnum - ok
18:21:33.0315 1308 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:21:33.0362 1308 IpFilterDriver - ok
18:21:33.0408 1308 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:21:33.0471 1308 iphlpsvc - ok
18:21:33.0502 1308 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:21:33.0518 1308 IPMIDRV - ok
18:21:33.0564 1308 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:21:33.0627 1308 IPNAT - ok
18:21:33.0658 1308 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:21:33.0720 1308 IRENUM - ok
18:21:33.0752 1308 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:21:33.0752 1308 isapnp - ok
18:21:33.0783 1308 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:21:33.0798 1308 iScsiPrt - ok
18:21:33.0845 1308 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
18:21:33.0845 1308 kbdclass - ok
18:21:33.0892 1308 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
18:21:33.0908 1308 kbdhid - ok
18:21:33.0939 1308 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
18:21:33.0954 1308 kbfiltr - ok
18:21:33.0970 1308 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:33.0986 1308 KeyIso - ok
18:21:34.0017 1308 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:21:34.0032 1308 KSecDD - ok
18:21:34.0064 1308 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:21:34.0064 1308 KSecPkg - ok
18:21:34.0095 1308 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:21:34.0157 1308 ksthunk - ok
18:21:34.0204 1308 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:21:34.0251 1308 KtmRm - ok
18:21:34.0298 1308 L1E (b8e670d7ef61615fa03104552854fac9) C:\Windows\system32\DRIVERS\L1E62x64.sys
18:21:34.0344 1308 L1E - ok
18:21:34.0376 1308 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
18:21:34.0516 1308 LanmanServer - ok
18:21:34.0547 1308 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:21:34.0719 1308 LanmanWorkstation - ok
18:21:34.0766 1308 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:21:34.0812 1308 lltdio - ok
18:21:34.0875 1308 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:21:34.0937 1308 lltdsvc - ok
18:21:34.0953 1308 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:21:34.0984 1308 lmhosts - ok
18:21:35.0031 1308 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:21:35.0031 1308 LSI_FC - ok
18:21:35.0062 1308 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:21:35.0078 1308 LSI_SAS - ok
18:21:35.0093 1308 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:21:35.0109 1308 LSI_SAS2 - ok
18:21:35.0125 1308 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:21:35.0140 1308 LSI_SCSI - ok
18:21:35.0171 1308 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:21:35.0218 1308 luafv - ok
18:21:35.0249 1308 lullaby (085435ae1a124361304044029b5cc644) C:\Windows\system32\DRIVERS\lullaby.sys
18:21:35.0249 1308 lullaby - ok
18:21:35.0281 1308 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:21:35.0312 1308 Mcx2Svc - ok
18:21:35.0343 1308 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:21:35.0359 1308 megasas - ok
18:21:35.0374 1308 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:21:35.0390 1308 MegaSR - ok
18:21:35.0421 1308 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:21:35.0483 1308 MMCSS - ok
18:21:35.0499 1308 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:21:35.0546 1308 Modem - ok
18:21:35.0577 1308 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:21:35.0608 1308 monitor - ok
18:21:35.0671 1308 motusbdevice (307727f9829fb46ff4be0e4d1dac5002) C:\Windows\system32\DRIVERS\motusbdevice.sys
18:21:35.0702 1308 motusbdevice - ok
18:21:35.0749 1308 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:21:35.0749 1308 mouclass - ok
18:21:35.0780 1308 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:21:35.0795 1308 mouhid - ok
18:21:35.0811 1308 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:21:35.0827 1308 mountmgr - ok
18:21:35.0920 1308 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:21:35.0936 1308 MozillaMaintenance - ok
18:21:35.0998 1308 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
18:21:36.0014 1308 MpFilter - ok
18:21:36.0029 1308 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:21:36.0045 1308 mpio - ok
18:21:36.0061 1308 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
18:21:36.0076 1308 MpNWMon - ok
18:21:36.0123 1308 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:21:36.0154 1308 mpsdrv - ok
18:21:36.0185 1308 MQAC (cd22d2563039dda6793f7624719363a7) C:\Windows\system32\drivers\mqac.sys
18:21:36.0217 1308 MQAC - ok
18:21:36.0248 1308 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:21:36.0279 1308 MRxDAV - ok
18:21:36.0295 1308 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:21:36.0357 1308 mrxsmb - ok
18:21:36.0388 1308 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:21:36.0404 1308 mrxsmb10 - ok
18:21:36.0451 1308 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:21:36.0482 1308 mrxsmb20 - ok
18:21:36.0513 1308 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:21:36.0529 1308 msahci - ok
18:21:36.0544 1308 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:21:36.0560 1308 msdsm - ok
18:21:36.0591 1308 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:21:36.0607 1308 MSDTC - ok
18:21:36.0653 1308 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:21:36.0700 1308 Msfs - ok
18:21:36.0716 1308 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:21:36.0763 1308 mshidkmdf - ok
18:21:36.0794 1308 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:21:36.0794 1308 msisadrv - ok
18:21:36.0841 1308 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:21:36.0887 1308 MSiSCSI - ok
18:21:36.0903 1308 msiserver - ok
18:21:36.0934 1308 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:21:36.0981 1308 MSKSSRV - ok
18:21:37.0012 1308 MSMQ (faaeaef99e53561beee58f946ca56f0d) C:\Windows\system32\mqsvc.exe
18:21:37.0043 1308 MSMQ - ok
18:21:37.0059 1308 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:21:37.0106 1308 MSPCLOCK - ok
18:21:37.0137 1308 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:21:37.0199 1308 MSPQM - ok
18:21:37.0231 1308 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:21:37.0262 1308 MsRPC - ok
18:21:37.0277 1308 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
18:21:37.0293 1308 mssmbios - ok
18:21:37.0309 1308 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:21:37.0355 1308 MSTEE - ok
18:21:37.0371 1308 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:21:37.0387 1308 MTConfig - ok
18:21:37.0433 1308 MTsensor (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
18:21:37.0433 1308 MTsensor - ok
18:21:37.0465 1308 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:21:37.0480 1308 Mup - ok
18:21:37.0511 1308 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:21:37.0574 1308 napagent - ok
18:21:37.0621 1308 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:21:37.0636 1308 NativeWifiP - ok
18:21:37.0699 1308 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:21:37.0730 1308 NDIS - ok
18:21:37.0745 1308 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:21:37.0792 1308 NdisCap - ok
18:21:37.0823 1308 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:21:37.0870 1308 NdisTapi - ok
18:21:37.0917 1308 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:21:37.0964 1308 Ndisuio - ok
18:21:37.0995 1308 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:21:38.0042 1308 NdisWan - ok
18:21:38.0073 1308 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:21:38.0104 1308 NDProxy - ok
18:21:38.0167 1308 Net Driver HPZ12 (dc6530a291d4bdf6df399f1f128e7f8f) C:\Windows\system32\HPZinw12.dll
18:21:38.0167 1308 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:21:38.0167 1308 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:21:38.0198 1308 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:21:38.0245 1308 NetBIOS - ok
18:21:38.0291 1308 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:21:38.0338 1308 NetBT - ok
18:21:38.0369 1308 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:38.0385 1308 Netlogon - ok
18:21:38.0416 1308 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:21:38.0479 1308 Netman - ok
18:21:38.0510 1308 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:21:38.0572 1308 netprofm - ok
18:21:38.0713 1308 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:21:38.0713 1308 NetTcpPortSharing - ok
18:21:38.0759 1308 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:21:38.0759 1308 nfrd960 - ok
18:21:38.0822 1308 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:21:38.0822 1308 NisDrv - ok
18:21:38.0915 1308 NisSrv (566ddd5d82520da01d75f81428ac4c38) C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
18:21:38.0931 1308 NisSrv - ok
18:21:38.0978 1308 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:21:39.0056 1308 NlaSvc - ok
18:21:39.0087 1308 nlem64nt - ok
18:21:39.0103 1308 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:21:39.0134 1308 Npfs - ok
18:21:39.0149 1308 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:21:39.0196 1308 nsi - ok
18:21:39.0212 1308 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:21:39.0259 1308 nsiproxy - ok
18:21:39.0337 1308 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:21:39.0383 1308 Ntfs - ok
18:21:39.0493 1308 NuidFltr (d4012918d3a3847b44b888d56bc095d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
18:21:39.0508 1308 NuidFltr - ok
18:21:39.0524 1308 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:21:39.0555 1308 Null - ok
18:21:39.0602 1308 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:21:39.0617 1308 nvraid - ok
18:21:39.0633 1308 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:21:39.0649 1308 nvstor - ok
18:21:39.0664 1308 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:21:39.0680 1308 nv_agp - ok
18:21:39.0805 1308 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:21:39.0898 1308 odserv - ok
18:21:39.0929 1308 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:21:39.0945 1308 ohci1394 - ok
18:21:40.0007 1308 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:21:40.0023 1308 ose - ok
18:21:40.0054 1308 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:21:40.0070 1308 p2pimsvc - ok
18:21:40.0101 1308 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:21:40.0132 1308 p2psvc - ok
18:21:40.0163 1308 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:21:40.0195 1308 Parport - ok
18:21:40.0241 1308 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:21:40.0241 1308 partmgr - ok
18:21:40.0273 1308 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:21:40.0304 1308 PcaSvc - ok
18:21:40.0335 1308 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:21:40.0351 1308 pci - ok
18:21:40.0382 1308 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:21:40.0397 1308 pciide - ok
18:21:40.0413 1308 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:21:40.0429 1308 pcmcia - ok
18:21:40.0460 1308 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:21:40.0460 1308 pcw - ok
18:21:40.0507 1308 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:21:40.0569 1308 PEAUTH - ok
18:21:40.0616 1308 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:21:41.0006 1308 PerfHost - ok
18:21:41.0084 1308 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:21:41.0162 1308 pla - ok
18:21:41.0193 1308 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:21:41.0240 1308 PlugPlay - ok
18:21:41.0271 1308 Pml Driver HPZ12 (71f62c51dfdfbc04c83c5c64b2b8058e) C:\Windows\system32\HPZipm12.dll
18:21:41.0302 1308 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:21:41.0302 1308 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:21:41.0333 1308 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:21:41.0365 1308 PNRPAutoReg - ok
18:21:41.0396 1308 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:21:41.0411 1308 PNRPsvc - ok
18:21:41.0458 1308 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:21:41.0505 1308 PolicyAgent - ok
18:21:41.0536 1308 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:21:41.0599 1308 Power - ok
18:21:41.0645 1308 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:21:41.0692 1308 PptpMiniport - ok
18:21:41.0739 1308 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:21:41.0755 1308 Processor - ok
18:21:41.0786 1308 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:21:41.0817 1308 ProfSvc - ok
18:21:41.0848 1308 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:41.0864 1308 ProtectedStorage - ok
18:21:41.0895 1308 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:21:41.0942 1308 Psched - ok
18:21:41.0957 1308 PTUMWBus - ok
18:21:41.0973 1308 PTUMWCDF - ok
18:21:41.0989 1308 PTUMWCSP - ok
18:21:42.0004 1308 PTUMWFLT - ok
18:21:42.0004 1308 PTUMWMdm - ok
18:21:42.0020 1308 PTUMWNET - ok
18:21:42.0020 1308 PTUMWNSP - ok
18:21:42.0035 1308 PTUMWVsp - ok
18:21:42.0098 1308 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:21:42.0145 1308 ql2300 - ok
18:21:42.0238 1308 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:21:42.0254 1308 ql40xx - ok
18:21:42.0285 1308 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:21:42.0316 1308 QWAVE - ok
18:21:42.0332 1308 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:21:42.0363 1308 QWAVEdrv - ok
18:21:42.0379 1308 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:21:42.0425 1308 RasAcd - ok
18:21:42.0472 1308 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:21:42.0519 1308 RasAgileVpn - ok
18:21:42.0550 1308 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:21:42.0613 1308 RasAuto - ok
18:21:42.0644 1308 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:21:42.0675 1308 Rasl2tp - ok
18:21:42.0722 1308 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:21:42.0769 1308 RasMan - ok
18:21:42.0815 1308 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:21:42.0878 1308 RasPppoe - ok
18:21:42.0893 1308 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:21:42.0940 1308 RasSstp - ok
18:21:42.0987 1308 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:21:43.0034 1308 rdbss - ok
18:21:43.0065 1308 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:21:43.0096 1308 rdpbus - ok
18:21:43.0112 1308 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:21:43.0159 1308 RDPCDD - ok
18:21:43.0205 1308 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:21:43.0252 1308 RDPENCDD - ok
18:21:43.0268 1308 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:21:43.0330 1308 RDPREFMP - ok
18:21:43.0346 1308 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:21:43.0377 1308 RDPWD - ok
18:21:43.0424 1308 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:21:43.0439 1308 rdyboost - ok
18:21:43.0486 1308 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:21:43.0533 1308 RemoteAccess - ok
18:21:43.0564 1308 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:21:43.0595 1308 RemoteRegistry - ok
18:21:43.0642 1308 RMCAST (caf88d6573d21cd2aa27001ddbfdc74d) C:\Windows\system32\DRIVERS\RMCAST.sys
18:21:43.0705 1308 RMCAST - ok
18:21:43.0720 1308 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:21:43.0767 1308 RpcEptMapper - ok
18:21:43.0798 1308 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:21:43.0829 1308 RpcLocator - ok
18:21:43.0876 1308 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:21:43.0907 1308 RpcSs - ok
18:21:43.0954 1308 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:21:44.0001 1308 rspndr - ok
18:21:44.0032 1308 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:44.0048 1308 SamSs - ok
18:21:44.0079 1308 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:21:44.0095 1308 sbp2port - ok
18:21:44.0126 1308 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:21:44.0173 1308 SCardSvr - ok
18:21:44.0204 1308 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:21:44.0251 1308 scfilter - ok
18:21:44.0329 1308 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:21:44.0391 1308 Schedule - ok
18:21:44.0422 1308 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:21:44.0469 1308 SCPolicySvc - ok
18:21:44.0485 1308 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:21:44.0516 1308 SDRSVC - ok
18:21:44.0563 1308 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:21:44.0625 1308 secdrv - ok
18:21:44.0656 1308 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:21:44.0703 1308 seclogon - ok
18:21:44.0734 1308 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:21:44.0797 1308 SENS - ok
18:21:44.0812 1308 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:21:44.0828 1308 SensrSvc - ok
18:21:44.0875 1308 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:21:44.0890 1308 Serenum - ok
18:21:44.0921 1308 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:21:44.0937 1308 Serial - ok
18:21:44.0968 1308 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:21:44.0999 1308 sermouse - ok
18:21:45.0031 1308 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:21:45.0093 1308 SessionEnv - ok
18:21:45.0124 1308 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:21:45.0140 1308 sffdisk - ok
18:21:45.0155 1308 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:21:45.0218 1308 sffp_mmc - ok
18:21:45.0233 1308 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:21:45.0249 1308 sffp_sd - ok
18:21:45.0280 1308 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:21:45.0311 1308 sfloppy - ok
18:21:45.0358 1308 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:21:45.0405 1308 ShellHWDetection - ok
18:21:45.0436 1308 simptcp (e9e830d540ededed650f906628468548) C:\Windows\System32\tcpsvcs.exe
18:21:45.0483 1308 simptcp - ok
18:21:45.0514 1308 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
18:21:45.0530 1308 SiSGbeLH - ok
18:21:45.0545 1308 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:21:45.0561 1308 SiSRaid2 - ok
18:21:45.0577 1308 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:21:45.0592 1308 SiSRaid4 - ok
18:21:45.0608 1308 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:21:45.0639 1308 Smb - ok
18:21:45.0701 1308 SNMP (ca62ae004e98374bf7f082cd765eea02) C:\Windows\System32\snmp.exe
18:21:45.0733 1308 SNMP - ok
18:21:45.0779 1308 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:21:45.0811 1308 SNMPTRAP - ok
18:21:45.0920 1308 SNP2UVC (1d8474722cdffbb8fca5fa12c50a05a2) C:\Windows\system32\DRIVERS\snp2uvc.sys
18:21:45.0951 1308 SNP2UVC - ok
18:21:46.0045 1308 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:21:46.0060 1308 spldr - ok
18:21:46.0107 1308 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:21:46.0154 1308 Spooler - ok
18:21:46.0294 1308 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:21:46.0419 1308 sppsvc - ok
18:21:46.0513 1308 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:21:46.0559 1308 sppuinotify - ok
18:21:46.0606 1308 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:21:46.0653 1308 srv - ok
18:21:46.0684 1308 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:21:46.0715 1308 srv2 - ok
18:21:46.0747 1308 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:21:46.0762 1308 srvnet - ok
18:21:46.0809 1308 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:21:46.0871 1308 SSDPSRV - ok
18:21:46.0903 1308 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:21:46.0949 1308 SstpSvc - ok
18:21:46.0965 1308 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:21:46.0981 1308 stexstor - ok
18:21:47.0027 1308 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:21:47.0074 1308 stisvc - ok
18:21:47.0121 1308 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
18:21:47.0121 1308 swenum - ok
18:21:47.0168 1308 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:21:47.0215 1308 swprv - ok
18:21:47.0293 1308 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:21:47.0339 1308 SysMain - ok
18:21:47.0433 1308 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:21:47.0449 1308 TabletInputService - ok
18:21:47.0495 1308 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:21:47.0542 1308 TapiSrv - ok
18:21:47.0558 1308 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:21:47.0620 1308 TBS - ok
18:21:47.0729 1308 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:21:47.0776 1308 Tcpip - ok
18:21:47.0932 1308 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:21:47.0963 1308 TCPIP6 - ok
18:21:48.0010 1308 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:21:48.0057 1308 tcpipreg - ok
18:21:48.0104 1308 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:21:48.0135 1308 TDPIPE - ok
18:21:48.0166 1308 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:21:48.0182 1308 TDTCP - ok
18:21:48.0229 1308 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:21:48.0260 1308 tdx - ok
18:21:48.0275 1308 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:21:48.0291 1308 TermDD - ok
18:21:48.0322 1308 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:21:48.0385 1308 TermService - ok
18:21:48.0431 1308 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:21:48.0463 1308 Themes - ok
18:21:48.0478 1308 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:21:48.0525 1308 THREADORDER - ok
18:21:48.0556 1308 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:21:48.0603 1308 TrkWks - ok
18:21:48.0634 1308 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:21:48.0743 1308 TrustedInstaller - ok
18:21:48.0775 1308 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:21:48.0837 1308 tssecsrv - ok
18:21:48.0868 1308 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:21:48.0899 1308 TsUsbFlt - ok
18:21:48.0946 1308 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:21:49.0009 1308 tunnel - ok
18:21:49.0040 1308 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:21:49.0040 1308 uagp35 - ok
18:21:49.0071 1308 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:21:49.0133 1308 udfs - ok
18:21:49.0165 1308 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:21:49.0180 1308 UI0Detect - ok
18:21:49.0211 1308 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:21:49.0227 1308 uliagpkx - ok
18:21:49.0258 1308 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:21:49.0289 1308 umbus - ok
18:21:49.0336 1308 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:21:49.0367 1308 UmPass - ok
18:21:49.0399 1308 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:21:49.0445 1308 upnphost - ok
18:21:49.0477 1308 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
18:21:49.0508 1308 usbaudio - ok
18:21:49.0539 1308 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:21:49.0570 1308 usbccgp - ok
18:21:49.0601 1308 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:21:49.0633 1308 usbcir - ok
18:21:49.0679 1308 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:21:49.0679 1308 usbehci - ok
18:21:49.0711 1308 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:21:49.0742 1308 usbhub - ok
18:21:49.0773 1308 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:21:49.0789 1308 usbohci - ok
18:21:49.0820 1308 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:21:49.0851 1308 usbprint - ok
18:21:49.0913 1308 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:21:49.0945 1308 usbscan - ok
18:21:49.0991 1308 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:21:50.0023 1308 USBSTOR - ok
18:21:50.0069 1308 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
18:21:50.0069 1308 usbuhci - ok
18:21:50.0132 1308 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
18:21:50.0179 1308 usbvideo - ok
18:21:50.0210 1308 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:21:50.0257 1308 UxSms - ok
18:21:50.0272 1308 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:50.0288 1308 VaultSvc - ok
18:21:50.0335 1308 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:21:50.0350 1308 vdrvroot - ok
18:21:50.0381 1308 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:21:50.0444 1308 vds - ok
18:21:50.0475 1308 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:21:50.0491 1308 vga - ok
18:21:50.0506 1308 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:21:50.0553 1308 VgaSave - ok
18:21:50.0600 1308 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:21:50.0615 1308 vhdmp - ok
18:21:50.0693 1308 VIAHdAudAddService (fe595d1a1b781190bb483444b62cc607) C:\Windows\system32\drivers\viahduaa.sys
18:21:50.0756 1308 VIAHdAudAddService - ok
18:21:50.0787 1308 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:21:50.0803 1308 viaide - ok
18:21:50.0834 1308 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:21:50.0834 1308 volmgr - ok
18:21:50.0865 1308 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:21:50.0881 1308 volmgrx - ok
18:21:50.0927 1308 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:21:50.0943 1308 volsnap - ok
18:21:50.0974 1308 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:21:50.0990 1308 vsmraid - ok
18:21:51.0068 1308 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:21:51.0146 1308 VSS - ok
18:21:51.0271 1308 vToolbarUpdater12.1.5 (3da649c6ec481d8f36b54f33fc01dd1e) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.5\ToolbarUpdater.exe
18:21:51.0302 1308 vToolbarUpdater12.1.5 - ok
18:21:51.0395 1308 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:21:51.0411 1308 vwifibus - ok
18:21:51.0427 1308 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:21:51.0442 1308 vwififlt - ok
18:21:51.0473 1308 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:21:51.0489 1308 vwifimp - ok
18:21:51.0520 1308 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:21:51.0583 1308 W32Time - ok
18:21:51.0723 1308 W3SVC (b32009db1972e7f2c227499289c4384a) C:\Windows\system32\inetsrv\iisw3adm.dll
18:21:51.0770 1308 W3SVC - ok
18:21:51.0801 1308 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:21:51.0848 1308 WacomPen - ok
18:21:52.0004 1308 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:21:52.0035 1308 WANARP - ok
18:21:52.0035 1308 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:21:52.0066 1308 Wanarpv6 - ok
18:21:52.0082 1308 wanatw - ok
18:21:52.0113 1308 WAS (b32009db1972e7f2c227499289c4384a) C:\Windows\system32\inetsrv\iisw3adm.dll
18:21:52.0129 1308 WAS - ok
18:21:52.0253 1308 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:21:52.0300 1308 WatAdminSvc - ok
18:21:52.0363 1308 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:21:52.0409 1308 wbengine - ok
18:21:52.0519 1308 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:21:52.0550 1308 WbioSrvc - ok
18:21:52.0581 1308 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:21:52.0628 1308 wcncsvc - ok
18:21:52.0643 1308 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:21:52.0675 1308 WcsPlugInService - ok
18:21:52.0706 1308 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:21:52.0721 1308 Wd - ok
18:21:52.0753 1308 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:21:52.0784 1308 Wdf01000 - ok
18:21:52.0799 1308 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:21:52.0846 1308 WdiServiceHost - ok
18:21:52.0846 1308 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:21:52.0862 1308 WdiSystemHost - ok
18:21:52.0893 1308 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:21:52.0924 1308 WebClient - ok
18:21:52.0971 1308 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:21:53.0018 1308 Wecsvc - ok
18:21:53.0033 1308 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:21:53.0080 1308 wercplsupport - ok
18:21:53.0111 1308 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:21:53.0143 1308 WerSvc - ok
18:21:53.0205 1308 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:21:53.0236 1308 WfpLwf - ok
18:21:53.0283 1308 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
18:21:53.0299 1308 WimFltr - ok
18:21:53.0314 1308 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:21:53.0330 1308 WIMMount - ok
18:21:53.0377 1308 WinDefend - ok
18:21:53.0392 1308 WinHttpAutoProxySvc - ok
18:21:53.0439 1308 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:21:53.0517 1308 Winmgmt - ok
18:21:53.0611 1308 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:21:53.0689 1308 WinRM - ok
18:21:53.0813 1308 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUsb.sys
18:21:53.0829 1308 WinUsb - ok
18:21:53.0891 1308 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:21:53.0923 1308 Wlansvc - ok
18:21:54.0094 1308 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:21:54.0157 1308 wlidsvc - ok
18:21:54.0235 1308 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:21:54.0250 1308 WmiAcpi - ok
18:21:54.0313 1308 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:21:54.0344 1308 wmiApSrv - ok
18:21:54.0391 1308 WMPNetworkSvc - ok
18:21:54.0422 1308 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:21:54.0437 1308 WPCSvc - ok
18:21:54.0469 1308 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:21:54.0484 1308 WPDBusEnum - ok
18:21:54.0500 1308 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:21:54.0531 1308 ws2ifsl - ok
18:21:54.0593 1308 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
18:21:54.0625 1308 wscsvc - ok
18:21:54.0656 1308 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
18:21:54.0671 1308 WSDPrintDevice - ok
18:21:54.0671 1308 WSearch - ok
18:21:54.0796 1308 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:21:54.0859 1308 wuauserv - ok
18:21:54.0952 1308 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:21:54.0999 1308 WudfPf - ok
18:21:55.0030 1308 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:21:55.0061 1308 WUDFRd - ok
18:21:55.0093 1308 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:21:55.0139 1308 wudfsvc - ok
18:21:55.0155 1308 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:21:55.0264 1308 WwanSvc - ok
18:21:55.0311 1308 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:21:55.0966 1308 \Device\Harddisk0\DR0 - ok
18:21:55.0966 1308 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR2
18:21:56.0091 1308 \Device\Harddisk1\DR2 - ok
18:21:56.0091 1308 Boot (0x1200) (b88e8a504fde01261b917a5ed0c8719f) \Device\Harddisk0\DR0\Partition0
18:21:56.0091 1308 \Device\Harddisk0\DR0\Partition0 - ok
18:21:56.0091 1308 Boot (0x1200) (f3b104b152ad33f5f5b23340f6eb5ef7) \Device\Harddisk0\DR0\Partition1
18:21:56.0091 1308 \Device\Harddisk0\DR0\Partition1 - ok
18:21:56.0107 1308 Boot (0x1200) (1d5dca64abccdd38f9e6eba7962bd4ce) \Device\Harddisk1\DR2\Partition0
18:21:56.0107 1308 \Device\Harddisk1\DR2\Partition0 - ok
18:21:56.0107 1308 ============================================================
18:21:56.0107 1308 Scan finished
18:21:56.0107 1308 ============================================================
18:21:56.0107 0616 Detected object count: 3
18:21:56.0107 0616 Actual detected object count: 3

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-26 18:24:09
-----------------------------
18:24:09.128 OS Version: Windows x64 6.1.7601 Service Pack 1
18:24:09.128 Number of processors: 2 586 0x170A
18:24:09.128 ComputerName: JENNIFERLOWERY UserName: Anita
18:24:09.502 Initialize success
18:26:01.760 AVAST engine defs: 12072602
18:26:11.822 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:26:11.822 Disk 0 Vendor: Hitachi_ PB3O Size: 305245MB BusType: 3
18:26:11.853 Disk 0 MBR read successfully
18:26:11.853 Disk 0 MBR scan
18:26:11.853 Disk 0 Windows XP default MBR code
18:26:11.853 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 14997 MB offset 2048
18:26:11.885 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76308 MB offset 30716280
18:26:11.885 Disk 0 Partition - 00 0F Extended LBA 213935 MB offset 186996600
18:26:11.916 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 213928 MB offset 186996663
18:26:11.947 Disk 0 scanning C:\Windows\system32\drivers
18:26:21.759 Service scanning
18:26:45.768 Modules scanning
18:26:45.768 Disk 0 trace - called modules:
18:26:45.799 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
18:26:45.799 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004888790]
18:26:45.799 3 CLASSPNP.SYS[fffff8800181743f] -> nt!IofCallDriver -> [0xfffffa8003ce3800]
18:26:45.815 5 ACPI.sys[fffff88000ecd7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8003ce9050]
18:26:46.236 AVAST engine scan C:\Windows
18:26:48.545 AVAST engine scan C:\Windows\system32
18:28:23.440 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
18:28:26.107 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
18:29:22.065 AVAST engine scan C:\Windows\system32\drivers
18:29:33.063 AVAST engine scan C:\Users\Anita
18:30:55.977 AVAST engine scan C:\ProgramData
18:32:47.688 Scan finished successfully
18:35:45.903 Disk 0 MBR has been saved successfully to "F:\log files\MBR.dat"
18:35:45.919 The log file has been saved successfully to "F:\log files\aswMBR.txt"

ESET Log
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.29.1\BabylonToolbarApp.dll a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.29.1\BabylonToolbarsrv.exe probably a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Program Files (x86)\MapsGalaxy_39EI\Installr\1.bin\39EIPlug.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files (x86)\MapsGalaxy_39EI\Installr\1.bin\39EZSETP.dll Win32/Toolbar.MyWebSearch.Q application cleaned by deleting - quarantined
C:\Program Files (x86)\MapsGalaxy_39EI\Installr\1.bin\NP39EISb.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Windows\Installer\{32e44419-3b31-c822-db75-13a9a34a545d}\U\00000008.@.vir Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Windows\Installer\{32e44419-3b31-c822-db75-13a9a34a545d}\U\80000032.@.vir a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{32e44419-3b31-c822-db75-13a9a34a545d}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{32e44419-3b31-c822-db75-13a9a34a545d}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:41 PM

Posted 26 July 2012 - 07:42 PM

Hello you have a zeroaccess rootkit,we need to repost these logs with a DDS log in a new topic.

We need a deeper look. Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
Skip GMER as you are posting the aswMBR log..

Also include the ComboFix log you have.

Let me know if that went well.

Edited by boopme, 26 July 2012 - 07:43 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 SOG

SOG
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:41 PM

Posted 27 July 2012 - 10:22 AM

Logs created. Posting with "ZeroAccess Rootkit Removal" in topic

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:41 PM

Posted 27 July 2012 - 08:19 PM

Thank you!!
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users